Archive for 'Technical Security Standards' Category
Process Flow for Institutions . . . and why Dan loves the Cybersecurity Assessment Tool! Another one of those Dan’s New Leaf Posts, meant to inspire thought about IT Governance . . . . Real quick: What should you do to get started on understanding the new Cybersecurity Assessment Tool (and its impact on future […]
Mobile devices getting a boost in security with ultrasonic 3D fingerprint scanner. A new 3D imaging technique of fingerprint scanning, using an ultrasonic sensor, has researchers excited about the prospects of “smartphone security” to another level. We’ve never been enthusiastic about biometrics. Way back in the early 2000’s one of our “early adopter” Clients inadvertently […]
Study shows that network engineers are knee deep in Information Security Investigations.
An article review. Beware of buzzwords Our friend and associate Joe Cychosz sent us this article a few days ago, and we thought it was worth sharing. This brief article highlights an alarming trend within the InfoSec world, where security vendors are hyping and spinning their offerings to the point of untruth! Now this may […]
An article review. You have to detect the breach first Many companies have plans for when a breach occurs. After all, there is no such thing as 100% security. As Dan Hadaway will highlight in his upcoming “Turning Lemons into Lemonade with Incident Response” webinar on April 2nd, it’s only a matter of time before […]
Dan gives a quick rundown on the two statements released by the FFIEC on 03/30/15.
An article review. Microsoft admits that Internet Explorer is vulnerable to HTTPS hack Earlier this month, Microsoft announced that any Windows computer running any version of Internet Explorer is vulnerable to a FREAK attack. Now the FREAK vulnerability has been around for years; however, it was believed to only affect certain browsers and devices, like […]
An article review. New Device automates iOS Pin Hacking Many companies have Bring Your Own Device policies in place, where employees are allowed to bring their own PCs or mobile devices into the workplace or have business utilities, like email, setup on their personal devices. They also usually have extensive policies allowing remote wiping, etc. […]
How much can failure be worth? Dan gets an idea while filling out a “customer satisfaction survey!” Another one of those Dan’s New Leaf Posts, meant to inspire thought about IT Governance . . . . So though I tried to comment on Lenovo’s site during the early days of their Superfish incident and they wouldn’t […]
Dan’s changing is standard response about hardware vendors.